ports/contrib
3
3
Fork 2
Code Issues Pull Requests Activity

volatility: 2.5 -> 2.6

Browse Source
This commit is contained in:
Danny Rawlins 2017-02-09 22:05:13 +11:00
parent f425a393c8
commit 5928ccf0fc
4 changed files with 121 additions and 50 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

144
volatility/.footprint
View File

@ -4,11 +4,11 @@ drwxr-xr-x root/root usr/bin/
drwxr-xr-x root/root usr/lib/
drwxr-xr-x root/root usr/lib/python2.7/
drwxr-xr-x root/root usr/lib/python2.7/site-packages/
drwxr-xr-x root/root usr/lib/python2.7/site-packages/volatility-2.5-py2.7.egg-info/
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility-2.5-py2.7.egg-info/PKG-INFO
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility-2.5-py2.7.egg-info/SOURCES.txt
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility-2.5-py2.7.egg-info/dependency_links.txt
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility-2.5-py2.7.egg-info/top_level.txt
drwxr-xr-x root/root usr/lib/python2.7/site-packages/volatility-2.6-py2.7.egg-info/
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility-2.6-py2.7.egg-info/PKG-INFO
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility-2.6-py2.7.egg-info/SOURCES.txt
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility-2.6-py2.7.egg-info/dependency_links.txt
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility-2.6-py2.7.egg-info/top_level.txt
drwxr-xr-x root/root usr/lib/python2.7/site-packages/volatility/
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/__init__.py
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/__init__.pyc
@ -185,6 +185,8 @@ drwxr-xr-x root/root usr/lib/python2.7/site-packages/volatility/plugins/linux/
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/linux/apihooks.pyc
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/linux/arp.py
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/linux/arp.pyc
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/linux/aslr_shift.py
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/linux/aslr_shift.pyc
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/linux/banner.py
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/linux/banner.pyc
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/linux/bash.py
@ -305,6 +307,8 @@ drwxr-xr-x root/root usr/lib/python2.7/site-packages/volatility/plugins/linux/
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/linux/pslist.pyc
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/linux/pslist_cache.py
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/linux/pslist_cache.pyc
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/linux/psscan.py
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/linux/psscan.pyc
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/linux/pstree.py
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/linux/pstree.pyc
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/linux/psxview.py
@ -346,6 +350,8 @@ drwxr-xr-x root/root usr/lib/python2.7/site-packages/volatility/plugins/mac/
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/mac/bash_hash.pyc
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/mac/calendar.py
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/mac/calendar.pyc
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/mac/check_fop.py
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/mac/check_fop.pyc
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/mac/check_mig_table.py
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/mac/check_mig_table.pyc
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/mac/check_syscall_shadow.py
@ -356,6 +362,8 @@ drwxr-xr-x root/root usr/lib/python2.7/site-packages/volatility/plugins/mac/
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/mac/check_sysctl.pyc
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/mac/check_trap_table.py
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/mac/check_trap_table.pyc
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/mac/classes.py
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/mac/classes.pyc
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/mac/common.py
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/mac/common.pyc
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/mac/compressed_swap.py
@ -368,6 +376,8 @@ drwxr-xr-x root/root usr/lib/python2.7/site-packages/volatility/plugins/mac/
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/mac/dead_sockets.pyc
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/mac/dead_vnodes.py
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/mac/dead_vnodes.pyc
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/mac/devfs.py
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/mac/devfs.pyc
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/mac/dlyd_maps.py
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/mac/dlyd_maps.pyc
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/mac/dmesg.py
@ -384,8 +394,12 @@ drwxr-xr-x root/root usr/lib/python2.7/site-packages/volatility/plugins/mac/
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/mac/gkextmap.pyc
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/mac/ifconfig.py
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/mac/ifconfig.pyc
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/mac/interest_handlers.py
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/mac/interest_handlers.pyc
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/mac/ip_filters.py
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/mac/ip_filters.pyc
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/mac/kevents.py
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/mac/kevents.pyc
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/mac/keychaindump.py
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/mac/keychaindump.pyc
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/mac/ldrmodules.py
@ -468,10 +482,14 @@ drwxr-xr-x root/root usr/lib/python2.7/site-packages/volatility/plugins/mac/
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/mac/threads.pyc
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/mac/threads_simple.py
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/mac/threads_simple.pyc
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/mac/timers.py
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/mac/timers.pyc
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/mac/trustedbsd.py
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/mac/trustedbsd.pyc
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/mac/version.py
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/mac/version.pyc
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/mac/vfsevents.py
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/mac/vfsevents.pyc
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/machoinfo.py
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/machoinfo.pyc
drwxr-xr-x root/root usr/lib/python2.7/site-packages/volatility/plugins/malware/
@ -583,8 +601,16 @@ drwxr-xr-x root/root usr/lib/python2.7/site-packages/volatility/plugins/overlays
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/vista_sp2_x86_vtypes.pyc
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/win10.py
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/win10.pyc
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/win10_x64_1AC738FB_vtypes.py
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/win10_x64_1AC738FB_vtypes.pyc
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/win10_x64_DD08DD42_vtypes.py
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/win10_x64_DD08DD42_vtypes.pyc
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/win10_x64_vtypes.py
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/win10_x64_vtypes.pyc
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/win10_x86_44B89EEA_vtypes.py
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/win10_x86_44B89EEA_vtypes.pyc
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/win10_x86_9619274A_vtypes.py
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/win10_x86_9619274A_vtypes.pyc
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/win10_x86_vtypes.py
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/win10_x86_vtypes.pyc
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/win2003.py
@ -615,8 +641,12 @@ drwxr-xr-x root/root usr/lib/python2.7/site-packages/volatility/plugins/overlays
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/win7_sp0_x64_vtypes.pyc
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/win7_sp0_x86_vtypes.py
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/win7_sp0_x86_vtypes.pyc
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/win7_sp1_x64_632B36E0_vtypes.py
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/win7_sp1_x64_632B36E0_vtypes.pyc
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/win7_sp1_x64_vtypes.py
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/win7_sp1_x64_vtypes.pyc
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/win7_sp1_x86_BBA98F40_vtypes.py
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/win7_sp1_x86_BBA98F40_vtypes.pyc
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/win7_sp1_x86_vtypes.py
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/win7_sp1_x86_vtypes.pyc
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/win8.py
@ -635,6 +665,8 @@ drwxr-xr-x root/root usr/lib/python2.7/site-packages/volatility/plugins/overlays
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/win8_sp0_x86_syscalls.pyc
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/win8_sp0_x86_vtypes.py
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/win8_sp0_x86_vtypes.pyc
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/win8_sp1_x64_54B5A1C6_vtypes.py
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/win8_sp1_x64_54B5A1C6_vtypes.pyc
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/win8_sp1_x64_syscalls.py
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/win8_sp1_x64_syscalls.pyc
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/win8_sp1_x64_vtypes.py
@ -776,35 +808,73 @@ drwxr-xr-x root/root usr/lib/python2.7/site-packages/volatility/win32/
-rw-r--r-- root/root usr/lib/python2.7/site-packages/volatility/win32/xpress.pyc
drwxr-xr-x root/root usr/share/
drwxr-xr-x root/root usr/share/volatility/
drwxr-xr-x root/root usr/share/volatility/plugins/
-rw-rw-rw- root/root usr/share/volatility/plugins/__init__.py (EMPTY)
drwxr-xr-x root/root usr/share/volatility/plugins/aspaces/
-rw-rw-rw- root/root usr/share/volatility/plugins/aspaces/__init__.py (EMPTY)
-rw-rw-rw- root/root usr/share/volatility/plugins/aspaces/ewf.py
-rw-rw-rw- root/root usr/share/volatility/plugins/disablewarnings.py
-rw-rw-rw- root/root usr/share/volatility/plugins/enumfunc.py
-rw-rw-rw- root/root usr/share/volatility/plugins/example.py
drwxr-xr-x root/root usr/share/volatility/plugins/malware/
-rw-rw-rw- root/root usr/share/volatility/plugins/malware/__init__.py (EMPTY)
-rw-rw-rw- root/root usr/share/volatility/plugins/malware/poisonivy.py
-rw-rw-rw- root/root usr/share/volatility/plugins/malware/zeusscan.py
-rw-rw-rw- root/root usr/share/volatility/plugins/pagecheck.py
-rw-rw-rw- root/root usr/share/volatility/plugins/psdispscan.py
-rw-rw-rw- root/root usr/share/volatility/plugins/scanprof.py
drwxr-xr-x root/root usr/tools/
drwxr-xr-x root/root usr/tools/linux/
-rw-rw-rw- root/root usr/tools/linux/Makefile
-rw-rw-rw- root/root usr/tools/linux/Makefile.enterprise
drwxr-xr-x root/root usr/tools/linux/kcore/
-rw-rw-rw- root/root usr/tools/linux/kcore/Makefile
-rw-rw-rw- root/root usr/tools/linux/kcore/elf.h
-rw-rw-rw- root/root usr/tools/linux/kcore/getkcore.c
-rw-rw-rw- root/root usr/tools/linux/kcore/getkcore.h
-rw-rw-rw- root/root usr/tools/linux/module.c
drwxr-xr-x root/root usr/tools/mac/
-rw-rw-rw- root/root usr/tools/mac/convert.py
-rw-rw-rw- root/root usr/tools/mac/generate_profile_list.py
-rw-rw-rw- root/root usr/tools/mac/mac_create_all_profiles.py
-rwxr-xr-x root/root usr/tools/vtype_diff.py
drwxr-xr-x root/root usr/tools/windows/
-rw-rw-rw- root/root usr/tools/windows/parsesummary.py
drwxr-xr-x root/root usr/share/volatility/contrib/
-rw-rw-r-- root/root usr/share/volatility/contrib/__init__.py (EMPTY)
-rw-r--r-- root/root usr/share/volatility/contrib/__init__.pyc
drwxr-xr-x root/root usr/share/volatility/contrib/library_example/
-rw-rw-r-- root/root usr/share/volatility/contrib/library_example/libapi.py
-rw-r--r-- root/root usr/share/volatility/contrib/library_example/libapi.pyc
-rw-rw-r-- root/root usr/share/volatility/contrib/library_example/pslist_json.py
-rw-r--r-- root/root usr/share/volatility/contrib/library_example/pslist_json.pyc
drwxr-xr-x root/root usr/share/volatility/contrib/plugins/
-rw-rw-r-- root/root usr/share/volatility/contrib/plugins/__init__.py (EMPTY)
-rw-r--r-- root/root usr/share/volatility/contrib/plugins/__init__.pyc
drwxr-xr-x root/root usr/share/volatility/contrib/plugins/aspaces/
-rw-rw-r-- root/root usr/share/volatility/contrib/plugins/aspaces/__init__.py (EMPTY)
-rw-r--r-- root/root usr/share/volatility/contrib/plugins/aspaces/__init__.pyc
-rw-rw-r-- root/root usr/share/volatility/contrib/plugins/aspaces/ewf.py
-rw-r--r-- root/root usr/share/volatility/contrib/plugins/aspaces/ewf.pyc
-rw-rw-r-- root/root usr/share/volatility/contrib/plugins/disablewarnings.py
-rw-r--r-- root/root usr/share/volatility/contrib/plugins/disablewarnings.pyc
-rw-rw-r-- root/root usr/share/volatility/contrib/plugins/enumfunc.py
-rw-r--r-- root/root usr/share/volatility/contrib/plugins/enumfunc.pyc
-rw-rw-r-- root/root usr/share/volatility/contrib/plugins/example.py
-rw-r--r-- root/root usr/share/volatility/contrib/plugins/example.pyc
drwxr-xr-x root/root usr/share/volatility/contrib/plugins/malware/
-rw-rw-r-- root/root usr/share/volatility/contrib/plugins/malware/__init__.py (EMPTY)
-rw-r--r-- root/root usr/share/volatility/contrib/plugins/malware/__init__.pyc
-rw-rw-r-- root/root usr/share/volatility/contrib/plugins/malware/poisonivy.py
-rw-r--r-- root/root usr/share/volatility/contrib/plugins/malware/poisonivy.pyc
-rw-rw-r-- root/root usr/share/volatility/contrib/plugins/malware/psempire.py
-rw-r--r-- root/root usr/share/volatility/contrib/plugins/malware/psempire.pyc
-rw-rw-r-- root/root usr/share/volatility/contrib/plugins/malware/zeusscan.py
-rw-r--r-- root/root usr/share/volatility/contrib/plugins/malware/zeusscan.pyc
-rw-rw-r-- root/root usr/share/volatility/contrib/plugins/pagecheck.py
-rw-r--r-- root/root usr/share/volatility/contrib/plugins/pagecheck.pyc
-rw-rw-r-- root/root usr/share/volatility/contrib/plugins/psdispscan.py
-rw-r--r-- root/root usr/share/volatility/contrib/plugins/psdispscan.pyc
-rw-rw-r-- root/root usr/share/volatility/contrib/plugins/saveconfig.py
-rw-r--r-- root/root usr/share/volatility/contrib/plugins/saveconfig.pyc
-rw-rw-r-- root/root usr/share/volatility/contrib/plugins/scanprof.py
-rw-r--r-- root/root usr/share/volatility/contrib/plugins/scanprof.pyc
drwxr-xr-x root/root usr/share/volatility/tools/
drwxr-xr-x root/root usr/share/volatility/tools/doxygen/
-rw-rw-r-- root/root usr/share/volatility/tools/doxygen/config
drwxr-xr-x root/root usr/share/volatility/tools/doxygen/d3/
-rw-rw-r-- root/root usr/share/volatility/tools/doxygen/d3/createtree.py
-rw-r--r-- root/root usr/share/volatility/tools/doxygen/d3/createtree.pyc
-rw-rw-r-- root/root usr/share/volatility/tools/doxygen/d3/tree.html
-rw-rw-r-- root/root usr/share/volatility/tools/doxygen/vol.png
drwxr-xr-x root/root usr/share/volatility/tools/linux/
-rw-rw-r-- root/root usr/share/volatility/tools/linux/Makefile
-rw-rw-r-- root/root usr/share/volatility/tools/linux/Makefile.enterprise
drwxr-xr-x root/root usr/share/volatility/tools/linux/kcore/
-rw-rw-r-- root/root usr/share/volatility/tools/linux/kcore/Makefile
-rw-rw-r-- root/root usr/share/volatility/tools/linux/kcore/elf.h
-rw-rw-r-- root/root usr/share/volatility/tools/linux/kcore/getkcore.c
-rw-rw-r-- root/root usr/share/volatility/tools/linux/kcore/getkcore.h
-rw-rw-r-- root/root usr/share/volatility/tools/linux/module.c
drwxr-xr-x root/root usr/share/volatility/tools/mac/
-rwxrwxr-x root/root usr/share/volatility/tools/mac/convert.py
-rw-r--r-- root/root usr/share/volatility/tools/mac/convert.pyc
-rw-rw-r-- root/root usr/share/volatility/tools/mac/generate_profile_list.py
-rw-r--r-- root/root usr/share/volatility/tools/mac/generate_profile_list.pyc
-rw-rw-r-- root/root usr/share/volatility/tools/mac/mac_create_all_profiles.py
-rw-r--r-- root/root usr/share/volatility/tools/mac/mac_create_all_profiles.pyc
-rw-rw-r-- root/root usr/share/volatility/tools/mac/parse_pbzx2.py
-rw-r--r-- root/root usr/share/volatility/tools/mac/parse_pbzx2.pyc
-rwxrwxr-x root/root usr/share/volatility/tools/vtype_diff.py
-rw-r--r-- root/root usr/share/volatility/tools/vtype_diff.pyc
drwxr-xr-x root/root usr/share/volatility/tools/windows/
-rw-rw-r-- root/root usr/share/volatility/tools/windows/parsesummary.py
-rw-r--r-- root/root usr/share/volatility/tools/windows/parsesummary.pyc

2
volatility/.md5sum
View File

@ -1 +1 @@
5be0f1a28ba98977d63df8948a6be1a5 volatility-2.5.zip
78234e807fc31394f22117d6c01a8798 2.6.tar.gz

8
volatility/.signature
View File

@ -1,5 +1,5 @@
untrusted comment: verify with /etc/ports/contrib.pub
RWSagIOpLGJF3wyu1EFFVtE2+idcAPjMjbPy6Qy71OmMGy+2h+ismRSsXUSKh4DTxOtJ3qI4VsYJWVzSMaFZM2eb6/6mIVtLjAc=
SHA256 (Pkgfile) = 019a13f20c373bae4fdccae5f94e82c8ee8de69ad1ac6363d66beeff88950d68
SHA256 (.footprint) = fe39b3da592083953f570387dbf60d597bf990186b9a0b19543028bf429eccca
SHA256 (volatility-2.5.zip) = b90dfd18b6a99e1b35ef0f92f28422cca03bea0b7b8ec411cfbc603e72aa594b
RWSagIOpLGJF34GvFTq6R7J+dlOgBRb6XvSEgJSDYVYmvublgwvF/IcoqH49OfzoTMzh3YCklIhi3/0Bpkc+BmHxnML4tG/9XAg=
SHA256 (Pkgfile) = 5c416bfd9f818b296515991c396251d10e9bec94ab6817cac700924e25e70fca
SHA256 (.footprint) = 2246213aa770f8515746e5a0a2f7f197584866b30487ef4e446898a36d22f2e6
SHA256 (2.6.tar.gz) = 6e81c3e6023e7a90953948907448d40ce02e6806275b6fdf6769b01dc9acd7af

17
volatility/Pkgfile
View File

@ -1,18 +1,19 @@
# Description: memory artifact extraction utility framework
# URL: https://www.volatilesystems.com/default/volatility
# URL: https://github.com/volatilityfoundation/volatility/wiki
# Maintainer: Thomas Penteker, tek at serverop dot de
# Depends on: python
# Depends on: python-setuptools
name=volatility
version=2.5
version=2.6
release=1
source=(http://downloads.volatilityfoundation.org/releases/${version}/volatility-${version}.zip)
source=(https://github.com/volatilityfoundation/$name/archive/$version.tar.gz)
build() {
cd $name-master
cd $name-$version
/usr/bin/python setup.py install --prefix=/usr --root=$PKG
mkdir -p $PKG/usr/share/$name
mv $PKG/usr/contrib/plugins $PKG/usr/share/$name
rm -r $PKG/usr/contrib
install -d $PKG/usr/share/$name
mv $PKG/usr/tools $PKG/usr/share/$name
mv $PKG/usr/contrib $PKG/usr/share/$name
/usr/bin/python -m compileall $PKG/usr/share
}